021a3608d86ae0c9bb4ce063d5e385762e5ca40d7927445bced010c40572f111 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da6fbbfef34ee85c28aa8435a806a840_NeikiAnalytics
Size

350KB
Sample

240516-megw5sfh9v
MD5

da6fbbfef34ee85c28aa8435a806a840
SHA1

85503dd3fa5421f09c02643abd0170ad38f9921c
SHA256

021a3608d86ae0c9bb4ce063d5e385762e5ca40d7927445bced010c40572f111
SHA512

352f3fa73f9bb76ae89d7f389c08994429f9af2cab61074bf7f0544326c169c31a6afb032d20e82cc51a83aa2d422ea010e2b5836555f9e895c828e6ef85e82f
SSDEEP

6144:Cs0N0GfEoS6ko+7bRD0I6qgG6z6QnkNblLIFifV9y7T31lJri8Ey:n0N0GfE0ko+xD0I6tGo659b9I3c8E

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  da6fbbfef34ee85c28aa8435a806a840_NeikiAnalytics
- Size
  
  350KB
- MD5
  
  da6fbbfef34ee85c28aa8435a806a840
- SHA1
  
  85503dd3fa5421f09c02643abd0170ad38f9921c
- SHA256
  
  021a3608d86ae0c9bb4ce063d5e385762e5ca40d7927445bced010c40572f111
- SHA512
  
  352f3fa73f9bb76ae89d7f389c08994429f9af2cab61074bf7f0544326c169c31a6afb032d20e82cc51a83aa2d422ea010e2b5836555f9e895c828e6ef85e82f
- SSDEEP
  
  6144:Cs0N0GfEoS6ko+7bRD0I6qgG6z6QnkNblLIFifV9y7T31lJri8Ey:n0N0GfE0ko+xD0I6tGo659b9I3c8E
Score

7^/10

persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2